Privacy Policy

You are here: / Privacy Policy

Privacy Policy

Last Updated: October 13, 2025

Cybersecurity Soft Start (“CSS,” “we,” “us,” or “our”) is committed to protecting your privacy and ensuring transparency in how we collect, use, and safeguard data across CybersecuritySoftStart.com and our Learning Management System (LMS) powered by LearnDash (collectively, “the Sites”).

By accessing or using the Sites, you agree to this Privacy, Data & Cookie Policy (“Policy”). If you do not agree, please discontinue use immediately.

1. Purpose of This Policy

This Policy explains:

  • What information we collect from users.
  • How and why we process it.
  • What cookies and analytics tools we use.
  • How we store and secure your data.
  • Your rights and options regarding personal information.

Our goal is to provide a transparent, secure learning experience that respects user privacy and data protection laws, including the California Consumer Privacy Act (CCPA) and, where applicable, the EU General Data Protection Regulation (GDPR).

2. Information We Collect

We collect two main types of data: Personal Information and Usage Data.

a. Personal Information

When you register, enroll in a course, or contact us, we may collect:

  • Name
  • Email address
  • School, organization, or employer affiliation (if applicable)
  • Role (educator, student, administrator, etc.)
  • Login credentials (username/password)
  • Course enrollment and progress data
  • Communication preferences

If payments are processed through a third-party vendor, we may collect transaction metadata, but we do not store credit card or financial information directly.

b. Usage Data

When you visit our website or LMS, we automatically collect technical and behavioral data such as:

  • IP address and general location
  • Browser type, device information, and operating system
  • Referring pages and session duration
  • Pages visited and course engagement metrics
  • Date and time of access
  • Anonymous analytics and cookie data

This information helps us understand how visitors use our platform and improve its performance.

3. How We Use Collected Data

We use the information collected to:

  • Create and manage user accounts.
  • Deliver and track course content within LearnDash.
  • Communicate important updates, notifications, and technical support.
  • Improve the LMS experience and develop new features.
  • Ensure site security and prevent unauthorized access.
  • Comply with applicable laws and institutional agreements.

We do not sell, rent, or trade user information, and we do not display advertising on the Sites.

4. Legal Basis for Data Processing

Depending on your location, we process personal data under one or more of the following bases:

  • Contractual necessity – to deliver the courses or services you request.
  • Legitimate interest – to improve educational offerings and maintain security.
  • Consent – where you opt in to communications or optional analytics.
  • Legal obligation – to comply with regulatory or institutional requirements.

5. Data Sharing and Third-Party Processors

We may share limited data with trusted service providers that support the operation of our platform. These partners are contractually obligated to handle information securely and use it solely for their designated purpose.

Examples include:

  • LearnDash – course management and user progress tracking.
  • WordPress – site framework and content management.
  • Hosting provider – data storage and delivery infrastructure.
  • Email and CRM tools – communication and support.
  • Analytics providers – aggregated usage metrics (e.g., Google Analytics, Matomo).

We do not permit these vendors to sell, rent, or use data for advertising.

6. Cookies and Tracking Technologies

a. What Cookies Are

Cookies are small text files placed on your device to enable core functionality, maintain your session, and analyze usage patterns.

b. How We Use Cookies

We use cookies to:

  • Keep users logged in to their LearnDash courses.
  • Remember language, theme, or interface preferences.
  • Measure website traffic and engagement trends.
  • Enhance security and prevent fraud.

c. Types of Cookies Used

Type Purpose Duration
Session Cookies Maintain login status during active browsing. Deleted when the browser closes.
Preference Cookies Save user settings (language, display). Up to 1 year.
Analytics Cookies Collect anonymized usage statistics. Up to 14 months.
Security Cookies Help detect and prevent unauthorized access. Variable (short-term).

d. Managing Cookies

You can adjust cookie settings in your browser. If you disable cookies, some site functions (such as course access or login persistence) may not work correctly.

7. Analytics and Performance Tools

We may use third-party analytics services (e.g., Google Analytics 4, Matomo, or WP Statistics) to understand user engagement and improve our platform.
These services collect aggregated, anonymized data only, such as page views, navigation paths, and device types.

You can opt out of analytics tracking by enabling “Do Not Track” in your browser or by using the Google Analytics Opt-Out Add-On.

8. Data Storage, Transfers, and Retention

All user data is stored on secure, access-controlled servers located in the United States.

We retain personal data only as long as necessary to:

  • Maintain your account and educational records.
  • Fulfill contractual or legal obligations.
  • Support institutional reporting or compliance requirements.

When data is no longer needed, it is securely deleted or anonymized.
If you access the Sites from outside the U.S., your information may be transferred to and processed within the U.S. under applicable data protection standards.

9. Data Protection and Security

Cybersecurity Soft Start employs multiple safeguards to protect user information, including:

  • Encrypted (HTTPS) data transmission.
  • Password hashing and role-based account access.
  • Secure hosting environments with regular backups.
  • Data encryption at rest where applicable.
  • Ongoing monitoring for vulnerabilities and unauthorized activity.

While we maintain industry-standard security, no system can guarantee absolute protection against all threats.

10. Children’s Privacy

Cybersecurity Soft Start does not knowingly collect personal information from children under the age of 13 without verifiable consent from a parent, guardian, or authorized educational institution.

If such data is discovered, it will be promptly deleted.

11. Your Rights and Choices

Depending on your jurisdiction, you may have the right to:

  • Access and receive a copy of your personal data.
  • Request correction or deletion of inaccurate or outdated information.
  • Withdraw consent to certain types of processing.
  • Request that we restrict or cease specific processing activities.
  • Request a portable copy of your information.
  • Lodge a complaint with your local data protection authority.

To exercise these rights, contact us here.

12. Data Deletion Requests

You may request deletion of your account and associated data at any time by contacting us here.

We will verify your identity before fulfilling any data deletion request and confirm once it has been completed.

13. Policy Updates

We may revise this Policy periodically to reflect technological or regulatory changes.
The “Last Updated” date above indicates the latest revision.
Significant updates will be communicated through a site notice or by email to registered users.

Continued use of the Sites after updates take effect constitutes your acknowledgment and acceptance of the revised Policy.

14. Contact Information

For questions, concerns, or data-related requests, please contact us here.

SoftStart Cybersecurity Program
Copyright © 2025 SoftStart Cybersecurity
Terms of Use Privacy Policy Web Accessibility